CLAIMS 



1.-55. (Canceled) 

56. (Currently Amended) A method comprising: 

electronically receiving a definition of a first group identifying a first plurality of users; 
automatically generating the first group having the first plurality of users according to the 
definition of the first group; 

electronically receiving a definition of a second group identifying a second plurality of 

users; 

automatically generating the second group having the second plurality of users according 

to the definition of the second group; 

receiving a definition of a desired group, where the definition of the desired group 
explicitiv specifies that the first group is to be included in the desired group and expUcitly 



specifies the second group is to be excluded fi-om the desired group; and 

automatically generating the desired group to include the first group and exclude the 
second group according to tiie received definition of the desired group. 

57. (Previously presented) The method of claim 56 where the definition of the first 
group or the second group identifies one or more properties shared by the users in the first group 
or the second group; and 

dynamically generating the first group or the second group according to the received 
definition. 

58. (Previously presented) The method of claim 56 where the definition of the first 
group or the second group statically defines the users in the gi'oup; and 

generating the first group or the second group according to the received definition. 

59. (Previously presented) The method of claim 56 where the first group is a private 
group available to one or more owners of the first group and unavailable to non-owners of the 
first group, the second group is a private group available to one or more owners of the second 



AMENDMENT 



Page 2 OF 12 



Do. No. 2705-0700 
SerialNo. 10/033,138 



group and unavailable to non-owners of the second group, and the desired group is a public 
group available to both the owners of the first and second groups and the non-owners of the first 
and second groups. 

60. (Previously presented) The method of claim 59 includes 

electronically receiving a definition of a third group of a plurality of users, where the 
third group is a public group available to both the owners of the first and second groups and the 
non-owners of the first and second groups; and 

electronically receiving a definition of a desired public group, where the definition of the 
desired public gi-oup specifies that the first group and the third group are to be included in the 
different desired group and the second group is to be excluded fi-om the desired public group. 

61 . (Currently Amended) The method of claim 56 includes electronically receiving 
el e ctronically r e c e iving a definition of a third group of a plurality of users, where the definition 
of the desired group specifies that the first group and the third group are to be included in the 
desired group and the second group is to be excluded from the desired group. 

62. (Currently Amended) The method ofclaim 56 includes electronically receiving 
electronically r e ceiving a definition of a third group of a plurality of users, where the definition 
of the desired group specifies that the first group is to be included in the desired group and the 
second group and the third group are to be excluded from the desired group. 

63. (Previously presented) An apparatus comprising a computer-readable medium 
having instructions, when executed by a processor or multiple communicating processors, 
perform a method comprising: 

receiving a definition of a first group identifying a first plurality of users; 
generating the first group having tlje first plurality of users according to the definition of 
the first group; 

receiving a definition of a second gi'oup identifying a second plurality of users; 
generating the second group having the second plurality of users according to the 
definition of the second group; 
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receiving a definition of a desired group, where the definition of the desired group 
specifies that the first group is to be included in the desired group and the second group is to be 
excluded from the desired group; and 

generating the desired group to include the first group and exclude the second group 
according to the received definition of the desired group. 

64. (Previously presented) The apparatus of claim 63 where the definition of the first 
group or the second group identifies one or more properties shared by the users in the first group 
or the second group; and 

dynamically generating the first group or the second group according to the received 
definition. 

65. (Previously presented) The apparatus of claim 63 where the definition of the first 
group or the second group statically defines the users in the group; and 

generating the first group or the second group according to the received definition. 

66. (Previously presented) The apparatus of claim 63 where the first group is a private 
group available to one or more owners of the first group and unavailable to non-owners of the 
first group, the second group is a private group available to one or more owners of the second 
group and unavailable to non-owners of the second group, and the desired group is a public 
group available to both the owners of the first and second groups and the non-owners of the first 
and second groups. 

67. (Previously presented) The apparatus of claim 66 includes 

receiving a definition of a third group of a plurality of users, where the third group is a 
public group available to both the owners of the first and second groups and the non-owners of 
the first and second groups; and 

receiving a definition of a desired public group, where the definition of the desired pubUc 
group specifies that the first group and the third group are to be included in the different desired 
group and the second group is to be excluded from the desired public group. 
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68. (Previously presented) The apparatus of claim 63 includes receiving a definition of a 
third group of a plurality of users, where the definition of the desired group specifies that the first 
group and the third group are to be included in the desired group and the second group is to be 
excluded firom the desired group. 

69. (Previously presented) The apparatus of claim 63 includes receiving a definition of a 
third group of a plurality of users, where the definition of the desired group specifies that the first 
group is to be included in the desired group and the second group and the third group are to be 
excluded from the desired group. 

70. (Previously presented) A system comprising: 

means for receiving a definition of a first group identifying a first plurality of users; 

means for generating the first group having the first plurality of users according to the 
definition of the first group; 

means for receiving a definition of a second group identifying a second plurality of users; 

means for generating the second group having the second plurality of users according to 
the definition of the second gi'oup; 

means for receiving a definition of a desired group, where the definition of the desired 
group specifies that the first group is to be included in the desired group and the second group is 
to be excluded from the desired group; and 

means for generating the desired group to include the first group and exclude the second 
group according to the received definition of the desired group. 

71 . (Previously presented) The method of claim 70 where the definition of the first 
group or the second group identifies one or more properties shared by the users in the first group 
or the siecond group; and 

means for dynamically generating the first group or the second group according to the 
received definition. 

72. (Previously presented) The method of claim 70 where the definition of the first 
group or the second group statically defines the users in the group; and 
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means for generating the first group or the second group according to the received 
definition. 

73. (Previously presented) The method of claim 70 where the first group is a private 
group available to one or more owners of the first group and unavailable to non-owners of the 
first group, the second group is a private group available to one or more owners of the second 
group and unavailable to non-owners of the second group, and the desired group is a pubHc 
group available to both the owners of the first and second groups and the non-owners of the first 
and second groups. 

74. (Previously presented) The method of claim 73 includes 

means for receiving a definition of a third group of a plurality of users, where the third 
group is a public group available to both the owners of the first and second groups and the non- 
owners of the first and second groups; and 

means for receiving a definition of a desired public group, where the definition of the 
desired public group specifies that the first group and the third group are to be included in the 
different desired group and the second group is to be excluded fi-om the desired pubUc group. 

75. (Previously presented) The method of claim 70 includes means for receiving a 
definition of a third group of a plurality of users, where the definition of the desired group 
specifies that the first group and the third group are to be included in the desired group and the 
second group is to be excluded fi-om the desired group. 

76. (Previously presented) The method of claim 70 includes means for receiving a 
definition of a third group of a plurality of users, where the definition of the desired group 
specifies that the first group is to be included in the desired group and the second group and the 
third group are to be excluded fi-om the desired group. 

77. (Previously presented) A device comprising: 
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an interface to receive definitions of a plurality of groups, each group specifying a 
plurality of items and indicating that the group is either available for inclusion into a desired 
group or not available for inclusion into the desired group; and 

a processing system to generate a desired group fi-om at least one of the plurality of 
groups available for inclusion into the desired group and exclude all of the pluraUty of groups not 
available for inclusion into the desired group. 

78. (Previously presented) The device of claim 77 where the definition of the at least 
one of the plurality of groups identifies one or more properties shared by the items in the group, 
where the processing system is configured to generate the group according to the received 
definition. 

79. (Currently Amended) Thedeviceffleti^of claim 77 where the definition of the at 
least one of the plurality of groups statically defines the items in that group, and where the 
processing system is configured to generate the group according to the received definition. 

80. (Currently Amended) The device »efeed of claim 77 where the plurality of groups 
are a private groups available to one or more owners of the corresponding groups and 
unavailable to non-owners of the corresponding groups, and the desired group is a public group 
available to both the owners of the groups and the non-owners of the groups. 

8 1 . (Currently Amended) The device method of claim 77 where the processing system is 
configured to generate another desired group fi-om at least one of the plurality of groups 
available for inclusion into the another desired group and the previously generated desired group, 
the processing system excluding all of the plurality of groups not available for inclusion into the 
desired group. 

82. (Currently Amended) The device m e thod of claim 77 where the processing system is 
configured to manage security of communications over a network according to at least one of the 
desired group or the plurality of groups, the processing system to manage security of 
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communications over a network by associating one or more network security privileges or 
resources accessible on the network with the desired group or the plurality of groups. 

83. (New) The apparatus of claim 63 where the definition explicitly specifies that the 
first group is to be included in the desired group and explicitly specifies the second group is to be 
excluded fi"om the desired group. 

84. (New) The system of claim 70 where the definition explicitly specifies that the first 
group is to be included in the desired group and expHcitly specifies the second group is to be 
excluded fi-om the desired group. 

85. (New) The device of claim 77 where the definition expHcitiy specifies that the first 
group is to be included in the desired group and explicitiy specifies the second group is to be 
excluded fi-om the desired group. 
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